$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: /q/NvBX4qkS4xIlnN7SRrBVbTUJt8QGQn2YmR9XRfoc= Subject key identifier: 4B:58:34:33:E7:CC:AF:49:47:25:8E:D1:15:A9:D2:39:E3:D7:AB:81 Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 347A Signing time: Sat 10 May 2025 15:14:08 +0000 Manifest this update: Sat 10 May 2025 15:14:07 +0000 Manifest next update: Sat 17 May 2025 15:14:07 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: 57LMIoAe2F1Q9owMf09RsU0Zk1N6zhFFl7R6coUfrUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: May 10 15:14:07 2025 GMT Not After : May 17 15:14:07 2025 GMT Subject: CN=681f6d40-2a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:06:75:e1:66:62:0e:43:25:0d:df:c8:8f: 29:08:07:ae:98:c7:2d:d2:e9:02:ca:22:1d:1c:0d: 82:d3:55:7e:07:46:25:8c:44:13:a7:12:29:a7:75: da:ec:79:a5:9a:f7:bd:d0:f1:b5:0d:27:0c:0f:3b: b9:84:8a:b2:24:30:03:e9:f1:6e:a0:33:a9:a4:2d: 8d:be:a9:af:de:c0:8d:14:5d:7f:0e:70:28:31:15: 10:5f:2f:c6:8a:5d:63:95:e4:df:be:bb:6c:02:05: a5:f1:2a:11:b4:2d:23:a8:3e:55:e0:f7:fd:56:0c: e0:db:bd:87:23:8b:b6:12:1d:0a:ba:bd:98:b0:b2: e4:be:c6:47:6f:3d:d3:96:29:3c:c1:b0:fe:1b:58: 98:16:88:d1:ad:74:da:78:85:ec:88:f1:e3:df:9d: 6b:f8:b5:e8:8c:c8:48:93:75:64:1a:05:ff:b0:5b: 4b:4c:2b:c8:c9:c4:2d:ed:b4:7f:85:22:5b:30:fa: 08:f2:f4:ff:e0:02:52:e7:b5:9d:70:e0:8b:53:3e: 90:ab:e1:41:f4:fc:a1:a5:c9:19:e9:27:59:95:55: 6b:4d:8e:27:e1:e8:b7:57:9c:67:f4:2b:e1:82:89: ca:d9:0c:7b:d3:00:9f:b9:e8:c0:88:8b:4a:ea:3e: f0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:58:34:33:E7:CC:AF:49:47:25:8E:D1:15:A9:D2:39:E3:D7:AB:81 X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:44:8f:73:30:bc:2b:08:ce:70:e1:bd:99:96:9e:96:d6:44: 66:c8:2c:53:95:22:0e:4f:2e:6a:51:4c:0a:10:91:e5:0a:74: c5:7d:a3:01:fd:92:e8:e0:63:c3:49:a1:1b:a7:9f:46:13:21: 8c:c9:3d:c5:7d:53:1a:df:56:51:68:dd:e9:18:42:e5:62:35: 52:20:05:40:02:73:56:da:3e:4d:f3:2a:b1:c8:ab:c2:c2:1a: 55:0e:98:e8:ad:a2:37:62:bf:a6:56:b8:87:ae:a5:28:af:88: 6d:23:cd:e7:35:57:b5:51:b3:2d:22:00:62:56:46:b3:8a:52: bd:91:42:f6:64:85:a7:85:d2:91:63:c3:40:45:92:ea:9b:31: 22:f5:b5:e1:4d:53:7d:30:2b:ba:88:8c:e7:56:b0:4d:bf:7d: 4e:65:f1:20:00:ef:93:21:9c:9b:fc:59:a3:af:0c:72:8f:60: 6d:1d:d7:53:bd:8c:1d:57:b2:34:a1:11:3e:c3:e3:12:36:81: f4:6c:b7:95:c7:4a:b6:08:97:0a:13:d9:43:6a:89:6e:f9:b8: 9e:da:a7:9c:a2:7e:a4:9a:12:d6:4a:19:1e:f4:72:79:29:d7: aa:0c:83:d4:16:25:1c:f4:cf:9b:9f:77:51:18:9d:ef:7b:33: f6:10:5c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjUwNTEwMTUxNDA3WhcNMjUwNTE3MTUxNDA3WjAYMRYwFAYD VQQDEw02ODFmNmQ0MC0yYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2AGdeFmYg5DJQ3fyI8pCAeumMct0ukCyiIdHA2C01V+B0YljEQTpxIpp3Xa 7Hmlmve90PG1DScMDzu5hIqyJDAD6fFuoDOppC2Nvqmv3sCNFF1/DnAoMRUQXy/G il1jleTfvrtsAgWl8SoRtC0jqD5V4Pf9Vgzg272HI4u2Eh0Kur2YsLLkvsZHbz3T lik8wbD+G1iYFojRrXTaeIXsiPHj351r+LXojMhIk3VkGgX/sFtLTCvIycQt7bR/ hSJbMPoI8vT/4AJS57WdcOCLUz6Qq+FB9PyhpckZ6SdZlVVrTY4n4ei3V5xn9Cvh gonK2Qx70wCfuejAiItK6j7wLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtYNDPn zK9JRyWO0RWp0jnj16uBMB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqRI9zMLwrCM5w4b2Zlp6W1kRmyCxTlSIOTy5qUUwKEJHlCnTFfaMB /ZLo4GPDSaEbp59GEyGMyT3FfVMa31ZRaN3pGELlYjVSIAVAAnNW2j5N8yqxyKvC whpVDpjoraI3Yr+mVriHrqUor4htI83nNVe1UbMtIgBiVkazilK9kUL2ZIWnhdKR Y8NARZLqmzEi9bXhTVN9MCu6iIznVrBNv31OZfEgAO+TIZyb/Fmjrwxyj2BtHddT vYwdV7I0oRE+w+MSNoH0bLeVx0q2CJcKE9lDaolu+bie2qecon6kmhLWShke9HJ5 KdeqDIPUFiUc9M+bn3dRGJ3vezP2EFxz -----END CERTIFICATE-----Generated at Mon May 12 04:22:33 2025 by rpki-client